Report of all Defender for Endpoint Devices

The purpose of the blog post is to inform you how to get an overview and report of all devices that are listed in Defender for Endpoint. The Defender for Endpoint entries are not automatically removed, resulting in a dirty environment.

Today’s world security is more important than ever and staying up to date plays a key role in keeping a secure environment. But advanced antivirus like Defender for Endpoint is also required. One of the key features of Microsoft Defender for Endpoint is its ability to protect devices against a wide range of threats, including malware, ransomware, phishing attacks, and other types of cyber-attacks. It can detect and block malicious activity on a device, and it can also help to prevent the spread of an attack to other devices on the network.

Via Intune You can easily onboard devices automatically to Defender. But when you delete a device from the Intune portal and the device is still onboarded to Defender for Endpoint, it will continue with reporting alerts and vulnerabilities etc.

To keep your defender for endpoint environment clean, I created a Logic app that creates an Excel report of all Defender for Endpoint devices periodically via the API.

Requirements:

  • Global Administrator
  • Azure Logic App
  • SharePoint site
  • Defender for Endpoint license
  • Service account for automation with Microsoft 365 license

API Requirements:

  • Machine.Read.All
  • Machine.ReadWrite.All

Defender for Endpoint API

The Microsoft Defender for Endpoint API is a set of RESTful APIS that allow organizations to integrate Microsoft Defender for Endpoint into their existing security and management systems. The API provide access to various features and functions of the Microsoft Defender for Endpoint platform, including:

  • Threat intelligence
    The Microsoft Defender for Endpoint API provides access to threat intelligence data, including indicators of compromise (IoCs) and other information about emerging threats and malware.
  • Security alerts
    The API allows organizations to retrieve security alerts generated by the Microsoft Defender for Endpoint platform, including details about the nature of the threat, the affected devices, and recommended actions.
  • Device management
    The API provides access to various device management functions, including the ability to view and update device information
  • Investigation and response
    The API provides access to tools and data for investigating and responding to security incidents, including the ability to retrieve logs and other data from affected devices.

The Microsoft Defender for Endpoint API is thus a powerful tool that allows organizations to integrate the Microsoft Defender for Endpoint platform into 3rd party security and management systems or automate tasks like I did to get an overview of all devices.

What is an Azure Logic App?

Azure Logic Apps is a cloud service that helps you schedule, automate, and orchestrate tasks, business processes, and workflows when you need to integrate apps, data, systems, and services across enterprises or organizations.

More information about Azure Logic Apps can be found here

Create an App Registration in Azure AD

  • Click on + New registration
  • Configure an app name e.g., Report – Defender for Endpoint Devices
  • Click on the Register button, the app will be created and automatically opened.
  • In the menu click on API Permissions
  • Click on+ Add a permission
  • Select APIs my organization uses and search for WindowsDefenderATP
  • Select Application permissions
  • Search and add the following permissions
Machine.Read.All
Machine.ReadWrite.All
  • Grant admin consent for your organisation
  • In the menu click on Certificates & Secrets
  • Click on + New Client secret
  • Set a description and the expiry of the secret and click on Add
  • Copy the value of the secret, the secret is needed for the flow.
  • Go to the overview page and copy the Client ID and Tenant ID, those are also needed in the flow.

Create an Azure Logic App to get an overview of all devices

Note. Rename every Azure Logic App action to match the screenshots!

  • Click on + Add
  • Select an existing Resource Group or create a new Resource Group
  • Select the instance Type (I have chosen for Consumption, but check the Azure Calculator which option fits your environment)
  • Select your region and click on Review + Create
  • Check the details on the Review + Create page and click on Create
  • After the deployment is completed, go to your new Logic App via Go to Resource button
  • The first step of the workflow is the Recurrence trigger, based on the desired interval

Note. I have used a 1-month interval in this blog.

  • The next four steps of the workflow are to initialize variables.
Initialize Audience VariableInitialize TenantID VariableInitialize ClientID VariableInitialize Secret Variable
NameAudienceClientIDTenantIDSecret
TypeStringStringStringString
Valuehttps://api.securitycenter.microsoft.com{Paste your Tenant ID}{Paste your Client ID}{Paste your Secret}
  • The next step is to get all the devices from the Defender for Endpoint database via a HTTP action

URI:

https://api-eu.securitycenter.windows.com/api/machines?$select=id,computerDnsName,firstSeen,lastSeen,osPlatform,healthStatus,isAadJoined,onboardingStatus,aadDeviceId
MethodGET
Authentication TypeActive Directory OAuth
Tenant@{variables(‘TenantID’)}
Audience@{variables(‘Audience’)}
Client ID@{variables(‘ClientID’)}
Credential TypeSecret
Secret@{variables(‘Secret’)}
  • After the HTTP – Get all Defender for Endpoint devices action you need to parse the body of the HTTP API response, create a Parse JSON action
  • Use the following schema in the Parse JSON – All Defender for Endpoint devices action
{
    "type": "object",
    "properties": {
        "body": {
            "type": "object",
            "properties": {
                "value": {
                    "type": "array",
                    "items": {
                        "type": "object",
                        "properties": {
                            "id": {
                                "type": "string"
                            },
                            "computerDnsName": {
                                "type": "string"
                            },
                            "firstSeen": {
                                "type": "string"
                            },
                            "lastSeen": {
                                "type": "string"
                            },
                            "osPlatform": {
                                "type": "string"
                            },
                            "healthStatus": {
                                "type": "string"
                            },
                            "isAadJoined": {
                                "type": "boolean"
                            },
                            "aadDeviceId": {},
                            "onboardingStatus": {
                                "type": "string"
                            }
                        },
                        "required": [
                            "id",
                            "computerDnsName",
                            "firstSeen",
                            "lastSeen",
                            "osPlatform",
                            "healthStatus",
                            "isAadJoined",
                            "aadDeviceId",
                            "onboardingStatus"
                        ]
                    }
                }
            }
        }
    }
}
  • After the Parse JSON step, you must create a Compose action to create an Excel template file. Use the following code in the Initialize Excel template file
{
  "$content-type": "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet",
  "$content": "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"
}
  • The next step is to create item on SharePoint and set the following configuration in the Create all Defender for Endpoint device overview file
Site Address{Select your SharePoint Site}
Folder Path{File location}
File NameDefender for Endpoint Device Report [email protected]{formatDateTime(addDays(utcNow(), 0), ‘yyyy-MM-dd’)}.xlsx
File Content@{outputs(‘Excel_template_file’)}
  • Now the Logic app have created the empty file on SharePoint, it requires a table to put data in the Excel file. Add a Create Table action and set the following configuration.
Location{Select the same SharePoint Site as in above step}
Document Library{Documents or other document library}
File{Folder path above step}/@{outputs(‘Create_all_Defender_for_Endpoint_device_overview_file’)?[‘body/Name’]}
Table rangeA1:I1
Table nameReport
Columns namesid,computerDnsName,firstSeen,lastSeen,osPlatform,healthStatus,isAadJoined,onboardingStatus, aadDeviceId
  • After the Create Defender for Endpoint Device table. Create a For Each loop with the value of the Parse JSON – All Defender for Endpoint devices action
  • Within the For each Defender for Endpoint Device loop, create a Add a row into table action
  • Set the following configuration in the Add a row into Defender for Endpoint Device table
Location{Select the same SharePoint Site as in above step}
Document Library{Documents or other document library}
File{Folder path above step}/@{outputs(‘Create_all_Defender_for_Endpoint_device_overview_file’)?[‘body/Name’]}
TableReport

Body:

{
  "id": @{items('For_each_Defender_for_Endpoint_Device')?['id']},
  "computerDnsName": @{items('For_each_Defender_for_Endpoint_Device')?['computerDnsName']},
  "firstSeen": @{items('For_each_Defender_for_Endpoint_Device')?['firstSeen']},
  "lastSeen": @{items('For_each_Defender_for_Endpoint_Device')?['lastSeen']},
  "osPlatform": @{items('For_each_Defender_for_Endpoint_Device')?['osPlatform']},
  "healthStatus": @{items('For_each_Defender_for_Endpoint_Device')?['healthStatus']},
  "isAadJoined": @{items('For_each_Defender_for_Endpoint_Device')?['isAadJoined']},
  "onboardingStatus": @{items('For_each_Defender_for_Endpoint_Device')?['onboardingStatus']},
  "aadDeviceId": @{items('For_each_Defender_for_Endpoint_Device')?['aadDeviceId']}
}

Create an Azure Logic App to get an overview of all devices

0 replies

Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.